Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Technology Laboratory Cloud Computing Program Beyond the Definition – Categorizing & Classifying Cloud Services using the Collaboratively Developed.

Published byMeredith Hudson Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Technology Laboratory Cloud Computing Program Beyond the Definition – Categorizing & Classifying Cloud Services using the Collaboratively Developed."— Presentation transcript:

1 Information Technology Laboratory Cloud Computing Program Beyond the Definition – Categorizing & Classifying Cloud Services using the Collaboratively Developed NIST Reference Architecture Robert Bohn, John Messina Information Technology Laboratory National Institute of Standards and Technology 1 NIST Cloud Computing Forum & Workshop IV November 2, 2011

2 Information Technology Laboratory Cloud Computing Program 2 2 Overview Definition of Cloud Computing Reference Architecture Basics Reference Architecture Taxonomy & Vocabulary Mapping Discussion

3 Information Technology Laboratory Cloud Computing Program 3 “Cloud computing is a model for enabling convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction.” NIST SP800-145 – The NIST Definition of Cloud Computing Service Models -Software as a Service (SaaS) -Platform as a Service (PaaS) -Infrastructure as a Service (IaaS) Deployment Models -Public -Private -Community -Hybrid Essential Characteristics -On demand self-service -Broad network access -Resource Pooling -Rapid Elasticity -Measured Service A Cloud

4 Information Technology Laboratory Cloud Computing Program 4 Reference Architecture Basics What is it? Provides a blueprint of all the components and decisions that must be made to construct particular functionality or area of interest. How is it useful? Creating standards Education Improving communication Creating clear roles & responsibilities Allowing a comparison between different things Ensuring consistency and quality across the development and delivery process

5 Information Technology Laboratory Cloud Computing Program 5 Example: Building a car A car needs… Some means of propulsion A steering mechanism Some moving mechanism on a road A place to put passengers Storage capacity How to generate power to propel the car ? Interactions with other parts Need some way to connect power to moving mechanism Need to control it (start, stop, increase, decrease power) Depending on its placement, there may be more or less room for passengers and storage Patterns for generating power Internal Combustion Engine Pattern Steam Engine Pattern Sterling Engine Pattern Electric Engine Pattern Making patterns more concrete Internal Combustion One Stroke Pattern Two Stroke Pattern Wankel Pattern

6 Information Technology Laboratory Cloud Computing Program 6 Cloud Carrier The intermediary that provides connectivity and transport of cloud services from Cloud Providers to Cloud Consumers. Cloud Carrier The intermediary that provides connectivity and transport of cloud services from Cloud Providers to Cloud Consumers. Cloud Provider Person, organization or entity responsible for making a service available to Cloud Consumers. Cloud Provider Person, organization or entity responsible for making a service available to Cloud Consumers. Cloud Auditor A party that can conduct independent assessment of cloud services, information system operations, performance and security of the cloud implementation. Cloud Auditor A party that can conduct independent assessment of cloud services, information system operations, performance and security of the cloud implementation. Cloud Consumer Person or organization that maintains a business relationship with, and uses service from Cloud Providers. Cloud Consumer Person or organization that maintains a business relationship with, and uses service from Cloud Providers. Cloud Broker An entity that manages the use, performance and delivery of cloud services, and negotiates relationships between Cloud Providers and Cloud Consumers. Cloud Broker An entity that manages the use, performance and delivery of cloud services, and negotiates relationships between Cloud Providers and Cloud Consumers. NIST Cloud Computing Reference Architecture Actors and their Roles

7 Information Technology Laboratory Cloud Computing Program The NIST Cloud Computing Reference Architecture 7

8 Information Technology Laboratory Cloud Computing Program 8 8 Cloud Provider: Person, organization or entity responsible for making a service available to Cloud Consumers. Cloud providers perform different tasks for different service models. The activities of cloud providers are discussed in greater detail from the perspectives of Service Deployment, Service Orchestration, Cloud Service Management, Security and Privacy. Provider TypeMajor Activities SaaSInstalls, manages, maintains and supports the software application on a cloud infrastructure. PaaSProvisions and manages cloud infrastructure and middleware for the platform consumers; provides development, deployment and administration tools to platform consumers. IaaSProvisions and manages the physical processing, storage, networking and the hosting environment and cloud infrastructure for IaaS consumers. Cloud Provider

9 Information Technology Laboratory Cloud Computing Program 9 Cloud Carrier: The intermediary that provides connectivity and transport of cloud services between Cloud Providers and Cloud Consumers. Provide access to cloud consumers through network, telecommunication and other access devices. – Example: Network access devices include computers, laptops, mobile phones, mobile internet devices (MIDs), etc. Distribution can be provided by network and telecomm carriers or a transport agent. – Transport agent: A business organization that provides physical transport of storage media such as high-capacity hard drives. A cloud provider shall set up SLAs with a cloud carrier to provide a consistent level of service. In general, the cloud carrier may be required to provide dedicated and encrypted connections. Cloud Carrier

10 Information Technology Laboratory Cloud Computing Program 10 Cloud Broker: An entity that manages the use, performance and delivery of cloud services and negotiates relationships between Cloud Providers and Cloud Consumers. The major services provided by a cloud broker include: Service Intermediation: A cloud broker enhances a given service by improving some specific capability and provides the value-added service to cloud consumers. Service Aggregation: A cloud broker combines and integrates multiple services into one or more new services. The broker will provide data integration and ensure the secure data movement between cloud consumer and multiple cloud providers. Service Arbitrage: Service arbitrage is similar to service aggregation, with the difference in that the services being aggregated aren’t fixed. Service arbitrage allows flexible and opportunistic choices for the broker. For example, the cloud broker can use a credit-scoring service and select the best score from multiple scoring agencies. Cloud Broker

11 Information Technology Laboratory Cloud Computing Program 11 Cloud Auditor: A party that can conduct independent assessment of cloud services, information system operations, performance and security of the cloud implementation. A cloud auditor can evaluate the services provided by a cloud provider in terms of security controls, privacy impact, performance, etc. – For security auditing, a cloud auditor can make an assessment of the security controls in the information system to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system. Auditing is especially important for federal agencies and “agencies should include a contractual clause enabling third parties to assess security controls of cloud providers” (Federal Cloud Computing Strategy, Feb. 2011.). Cloud Auditor

12 Information Technology Laboratory Cloud Computing Program 12 The science of categorization, or classification, of things based on a predetermined system. (Webopedia) Main Attributes: – Typically a controlled vocabulary with a hierarchical tree-like structure – Terms in a taxonomy have relationships with other terms – Usually in the form of a parent (broader) / child (narrower) Benefits: – Encompasses and labels all significant concepts within a given domain – Allows users to understand the context of each label Taxonomies

13 Information Technology Laboratory Cloud Computing Program 13 Level 1: Cloud Service Provider – Person, organization or higher-level system responsible for making a service available to service consumers. Level 2: Cloud Service Management – Cloud Service Management includes all the service-related functions that are necessary for the management and operations of those services required by or proposed to customers. Level 3: Public Cloud - The cloud infrastructure is made available to the general public or a large industry group and is owned by an organization selling cloud services. [NIST Definition of Cloud Computing] Level 4: Data Portability – The ability to transfer data from one system to another without being required to recreate or reenter data descriptions or to modify significantly the application being transported. [Federal Standard 1037C] Taxonomy Cloud Terms and Definitions

14 Information Technology Laboratory Cloud Computing Program 14 RA Taxonomy / Mindmap

15 Information Technology Laboratory Cloud Computing Program 15 A Mapping Process 15  What is your role in the Reference Architecture? Cloud Provider Auditor Broker  Identify the major activities for a given role using the NIST Taxonomy for Cloud Computing. For a Cloud Provider there are 5 major sub-roles Service Deployment Service Orchestration Cloud Service Management Security Privacy  Identify the major components of your architecture and find the similar component in the NIST Reference Architecture Service Orchestration Identify your physical resources Methods of control & resource abstraction Service layers

16 Information Technology Laboratory Cloud Computing Program 16 Example Mapping Process Cloud ProviderSecurity Service Management OrchestrationPhysical Resources House ClStorStuff (Network Hard Drive) Router Broadband Internet ClStorStuff (Management) Cloud Provider Cloud Service Management Provisioning/ Configuration Provisioning/ Configuration Portability/ Interoperability Portability/ Interoperability Business Support Business Support Security Privacy Physical Resource Layer Hardware Facility Resource Abstraction and Control Layer Service Layer IaaS SaaS PaaS Cloud Orchestration House

17 Information Technology Laboratory Cloud Computing Program 17 Mapping Process Crowne Plaza Hotel - Friday Nov 4, 2011 17 BO2: Using the Reference Architecture and Taxonomy Co-Chairs: Bob Bohn, John Messina Industry use of the Reference Architecture & Taxonomy to Categorize Cloud Services & Products Industry examples: Special Guests – Scott A. Bernard, Federal Chief Enterprise Architect, Executive Office of the President, Office of Management & Budget, E-Government & IT Matthew Goodrich, Project Manager, FEDRAMP and Apps.gov, General Services Administration

18 Information Technology Laboratory Cloud Computing Program Questions? NIST Cloud Computing Collaboration Site http://collaborate.nist.gov/twiki-cloud-computing/ NIST Cloud Computing Home Page http://www.nist.gov/itl/cloud NIST SP 500-292 - NIST Cloud Computing Reference Architecture 18 Contact: Dawn Leafdawn.leaf@nist.govdawn.leaf@nist.gov Robert Bohnrobert.bohn@nist.govrobert.bohn@nist.gov John Messina john.messina@nist.govjohn.messina@nist.gov

Download ppt "Information Technology Laboratory Cloud Computing Program Beyond the Definition – Categorizing & Classifying Cloud Services using the Collaboratively Developed."

Similar presentations

Cloud Reference Architectures IIT RTC 2013

Cloud Reference Architectures IIT RTC 2013
Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.

Security, Privacy and the Cloud Connecticut Community Providers’ Association June 20, 2014 Steven R Bulmer, VP of Professional Services.
Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.

Chapter 22: Cloud Computing and Related Security Issues Guide to Computer Network Security.
Tom Yarmas CTO – Cloud Technologies U.S. Public Sector Cloud Computing: How to do it right!

Tom Yarmas CTO – Cloud Technologies U.S. Public Sector Cloud Computing: How to do it right!
Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.

Clouds C. Vuerli Contributed by Zsolt Nemeth. As it started.
Cloud SUT proposal OSGcloud group. Objective To fill in the Research the group about the thinking within the OSG working group To solicit new ideas/proposals.

Cloud SUT proposal OSGcloud group. Objective To fill in the Research the group about the thinking within the OSG working group To solicit new ideas/proposals.
C LOUD C OMPUTING Presented by Ye Chen. What is cloud computing? Cloud computing is a model for enabling ubiquitous, convenient, on- demand network access.

C LOUD C OMPUTING Presented by Ye Chen. What is cloud computing? Cloud computing is a model for enabling ubiquitous, convenient, on- demand network access.
Public cloud definition Public cloud is a cloud in which Cloud infrastructure is available to the general public. Public cloud define cloud computing.

Public cloud definition Public cloud is a cloud in which Cloud infrastructure is available to the general public. Public cloud define cloud computing.
What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.

What is Cloud Computing? o Cloud computing:- is a style of computing in which dynamically scalable and often virtualized resources are provided as a service.
Cloud Usability Framework

Cloud Usability Framework
Wally Kowal, President and Founder Canadian Cloud Computing Inc.

Wally Kowal, President and Founder Canadian Cloud Computing Inc.
Be Smart, Use PwrSmart What Is The Cloud?. Where Did The Cloud Come From? We get the term “Cloud” from the early days of the internet where we drew a.

Be Smart, Use PwrSmart What Is The Cloud?. Where Did The Cloud Come From? We get the term “Cloud” from the early days of the internet where we drew a.
M.A.Doman 2011. Model for enabling the delivery of computing as a SERVICE.

M.A.Doman Model for enabling the delivery of computing as a SERVICE.
Cloud Computing Guide & Handbook SAI USA Madhav Panwar.

Cloud Computing Guide & Handbook SAI USA Madhav Panwar.
SPRING 2011 CLOUD COMPUTING Cloud Computing San José State University Computer Architecture (CS 147) Professor Sin-Min Lee Presentation by Vladimir Serdyukov.

SPRING 2011 CLOUD COMPUTING Cloud Computing San José State University Computer Architecture (CS 147) Professor Sin-Min Lee Presentation by Vladimir Serdyukov.
Design of New or Changed Services in the Cloud: An ISO/IEC 20000 Perspective Ronald Dattero Missouri State University, CIS Dept. Stuart D. Galup Florida.

Design of New or Changed Services in the Cloud: An ISO/IEC Perspective Ronald Dattero Missouri State University, CIS Dept. Stuart D. Galup Florida.
Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.

Securing and Auditing Cloud Computing Jason Alexander Chief Information Security Officer.
Cloud computing Tahani aljehani.

Cloud computing Tahani aljehani.
EA and IT Infrastructure - 1© Minder Chen, 1995-2011 Stages in IT Infrastructure Evolution Mainframe/Mini Computers Personal Computer Client/Sever Computing.

EA and IT Infrastructure - 1© Minder Chen, Stages in IT Infrastructure Evolution Mainframe/Mini Computers Personal Computer Client/Sever Computing.
Discussion on LI for Mobile Clouds

Discussion on LI for Mobile Clouds

Similar presentations

Ads by Google